Where should one apply preventative measures to reject unwanted traffic that could come on over a dial out line to an isp connection from a system that will be used as a workstation but has the full professional suse 7.3 install.? The object is to be able to browse to receive mail from the isp user user account and to receive news from news groups maintained at the isp. Should I look at xinetd and or iptables and or ipchains? Is there so other feature that I should look at? Tnx. Gilbert.
On Wed, Feb 20, 2002 at 12:45:33PM -0600, gkaplan wrote:
Where should one apply preventative measures to reject unwanted traffic that could come on over a dial out line to an isp connection from a system that will be used as a workstation but has the full professional suse 7.3 install.? The object is to be able to browse to receive mail from the isp user user account and to receive news from news groups maintained at the isp. Should I look at xinetd and or iptables and or ipchains? Is there so other feature that I should look at? Tnx. Gilbert.
Take a look at the SuSEpersonal-firewall. It blocks ALL inbound traffic, but allows you to connect out. It is also very easy to set up using YaST2. Regards, Keith -- LPIC-2, MCSE, N+ wielder of vi(m), an ancient, dangerous and powerful magic free your mind, and your OS will follow
Depending upon the kernel you have installed, look at SuSEfirewall (for the 2.2.x kernel and ipchains) or SuSEfirewall2 (for the 2.4.x kernel and iptables). You can find documentation for both in: /usr/share/doc/packages/SuSEfirewall or /usr/share/doc/packages/SuSEfirewall2 There are nice scripts which you can use to set them up. The scripts are pretty self explanatory. Jim 02/20/02 12:45:33 PM, gkaplan <gkaplan@castle.net> wrote:
Where should one apply preventative measures to reject unwanted traffic that could come on over a dial out line to an isp connection from a system that will be used as a workstation but has the full professional suse 7.3 install.? The object is to be able to browse to receive mail from the isp user user account and to receive news from news groups maintained at the isp. Should I look at xinetd and or iptables and or ipchains? Is there so other feature that I should look at? Tnx. Gilbert.
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com
participants (3)
-
gkaplan -
James Bliss -
Keith Winston